Endpoint Protection

 View Only

  • 1.  Ports or URL needed for SEPM virus def download

    Posted Jul 14, 2016 07:31 AM

    I need to lock down my internet connection on SEPM, what needs to be open so SEPM can still download def?

     

    HTTP port 80, 443 to:

    liveupdate.symantecliveupdate.com
    liveupdate.symantec.com
    update.symantec.com

     

    Will this work? any issues or concerns with this setup?

     



  • 2.  RE: Ports or URL needed for SEPM virus def download
    Best Answer

    Trusted Advisor
    Posted Jul 14, 2016 08:06 AM
    Port Number Port Type Initiated By Listening Process Description
    8014 / 80 TCP SEP clients httpd.exe (Apache)
    svchost.exe (IIS)    		 Communication between the SEPM and SEP clients and Enforcers.
    (8014 in MR3 and later builds, 80 in older).
    SEP 12 uses Apache. SEP 11 uses IIS.
    443 TCP SEP clients svchost.exe (IIS)
    httpd.exe (Apache)    		 Optional secured HTTPS communication between a SEPM and SEP clients and Enforcers.
    1433 TCP SEPM sqlserver.exe Communication between a SEPM and a Microsoft SQL Database Server if they reside on separate computers.
    2638 TCP SEPM 12.1: dbsrv11.exe
    11: dbsrv9.exe    		 Communication between the embedded database and the SEPM.

     

    Push deployment

    Management servers and clients use TCP 139 and 445, UDP 137 and 138, and TCP ephemeral ports for push deployment. As of SEP 12.1.5, TCP 22 is used for push deployment of Mac clients.

     

    URLs

    http://liveupdate.symantecliveupdate.com:80

    http://liveupdate.symantec.com:80

    and

    http://akamai.net:80

     

    Full SEP ports list
    https://support.symantec.com/en_US/article.TECH163787.html



  • 3.  RE: Ports or URL needed for SEPM virus def download

    Posted Jul 14, 2016 08:24 AM

    The URLs mentioned here:

    How to determine whether your firewall is blocking LiveUpdate



  • 4.  RE: Ports or URL needed for SEPM virus def download

    Posted Jul 15, 2016 07:51 AM

    What ports need to be open for replication between two sites? Prod and DEV?

     



  • 5.  RE: Ports or URL needed for SEPM virus def download

    Posted Jul 15, 2016 08:01 AM

    replication happens over the port 8443 between the SEPM's